OpenSSL

Findings · 23

1. 1 Risk of signed integer overflows when parsing property queries Informational
2. 2 The provider configuration format is prone to misuse Low
3. 3 The default provider supports insecure algorithms Informational
4. 4 Provider configuration section can cause a stack overflow Informational
5. 5 Risk of heap buer overflow during parsing of OIDs Informational
6. 6 Risk of segmentation fault when loading property list in “stable” configuration section Informational
7. 7 The ossl_prov_memdup function does not update dst_len if the call fails Informational
8. 8 API misuse may lead to unexpected segmentation fault Informational
9. 9 Insucient validation in dh_gen_common_set_params Low
10. 10 HTTP client redirects to local host instead of remote one Informational
11. 11 OCSP requests might hang if the server responds with infinite headers Medium
12. 12 Calling EVP_KDF_CTX_reset causes a double free when the context is freed Low
13. 13 The aesni_cbc_hmac_sha256_cipher function depends on compiler-specific behavior Low
14. 14 Use after free when setting invalid properties on the Scrypt algorithm or if SHA-256 is missing Low
15. 15 Setting OSSL_MAC_PARAM_DIGEST_NOINIT for HMAC causes segmentation fault Informational
16. 16 Functions of EVP_CIPHER_CTX are missing null checks Informational
17. 17 Assertion could be hit when fetching algorithms by name Informational
18. 18 Reinitialization of EVP_MAC for GMAC fails if parameters are not provided Low
19. 19 Creation of X.509 extensions can lead to undefined behavior Informational
20. 20 Missing null checks in OSSL_PARAM getters Informational
21. 21 The ossl_blake2b_final function fails to zeroize sensitive data Medium
22. 22 The kdf_pbkdf1_do_derive function fails to zeroize sensitive data Medium
23. 23 Out-of-bounds read in kdf_pbkdf1_do_derive Medium

Findings extracted from the published report PDF. See the full report below for details and remediation.